9.3
CVE-2007-0947
- EPSS 55.36%
- Published 08.05.2007 23:19:00
- Last modified 09.04.2025 00:30:58
- Source secure@microsoft.com
- Teams watchlist Login
- Open Login
Use-after-free vulnerability in Microsoft Internet Explorer 7 on Windows XP SP2, Windows Server 2003 SP1 or SP2, or Windows Vista allows remote attackers to execute arbitrary code via crafted HTML objects, resulting in accessing deallocated memory of CMarkup objects, aka the second of two "HTML Objects Memory Corruption Vulnerabilities" and a different issue than CVE-2007-0946.
Data is provided by the National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version6
Microsoft ≫ Windows 2003 Server Versionsp1
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Internet Explorer Version7.0
Microsoft ≫ Windows 2003 Server Versionsp1
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Internet Explorer Version6
Microsoft ≫ Internet Explorer Version7.0
Microsoft ≫ Internet Explorer Version6
Microsoft ≫ Internet Explorer Version7.0
Microsoft ≫ Internet Explorer Version7.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 55.36% | 0.978 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|